× Колачићи су онемогућени. Овај сајт захтева колачиће како би нормално функционисао
SHA256: df634b42c7ce6027aeab4e90d83594c637d6d6e73acc9e89027ed34de1655d37
Име датотеке: Unconfirmed 957531.crdownload
Однос откривања: 0 / 56
Датум анализе: 2017-01-18 13:32:39 UTC (пре 1 година, 7 месеци)
Антивирус Резултат Ажурирање
Ad-Aware 20170118
AegisLab 20170118
AhnLab-V3 20170118
Alibaba 20170118
ALYac 20170118
Antiy-AVL 20170118
Arcabit 20170118
Avast 20170118
AVG 20170118
Avira (no cloud) 20170118
AVware 20170118
Baidu 20170118
BitDefender 20170118
CAT-QuickHeal 20170118
ClamAV 20170118
CMC 20170118
Comodo 20170118
CrowdStrike Falcon (ML) 20161024
Cyren 20170118
DrWeb 20170118
Emsisoft 20170118
ESET-NOD32 20170118
F-Prot 20170118
F-Secure 20170118
Fortinet 20170118
GData 20170118
Ikarus 20170118
Sophos ML 20170111
Jiangmin 20170118
K7AntiVirus 20170118
K7GW 20170118
Kaspersky 20170118
Kingsoft 20170118
Malwarebytes 20170118
McAfee 20170118
McAfee-GW-Edition 20170118
Microsoft 20170118
eScan 20170118
NANO-Antivirus 20170118
nProtect 20170118
Panda 20170117
Qihoo-360 20170118
Rising 20170118
Sophos AV 20170118
SUPERAntiSpyware 20170118
Symantec 20170117
Tencent 20170118
TheHacker 20170117
TotalDefense 20170118
TrendMicro 20170118
TrendMicro-HouseCall 20170118
Trustlook 20170118
VBA32 20170117
VIPRE 20170118
ViRobot 20170118
WhiteArmor 20170117
Yandex 20170117
Zillya 20170117
Zoner 20170118
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product DAX Studio
File version 2.6.0.76
Description DAX Studio Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, UTF-8
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-04-06 14:39:04
Entry Point 0x000117DC
Number of sections 8
PE sections
Overlays
MD5 1b4791ec4ebcd5fc45891b3cdb8728ef
File type data
Offset 166400
Size 4820298
Entropy 8.00
PE imports
RegCloseKey
OpenProcessToken
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
InitCommonControls
GetLastError
GetStdHandle
GetUserDefaultLangID
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
GetThreadLocale
VirtualProtect
GetFileAttributesW
RtlUnwind
lstrlenW
GetExitCodeProcess
CreateProcessW
GetStartupInfoA
SizeofResource
GetWindowsDirectoryW
LocalAlloc
LockResource
GetDiskFreeSpaceW
GetCommandLineW
SetErrorMode
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
GetCPInfo
DeleteFileW
GetProcAddress
InterlockedCompareExchange
GetLocaleInfoW
lstrcpynW
RaiseException
WideCharToMultiByte
RemoveDirectoryW
SetFilePointer
GetSystemDirectoryW
GetFullPathNameW
ReadFile
GetEnvironmentVariableW
InterlockedExchange
CreateDirectoryW
WriteFile
GetCurrentProcess
CloseHandle
FindFirstFileW
GetACP
GetModuleHandleW
SignalObjectAndWait
SetEvent
FormatMessageW
LoadLibraryW
CreateEventW
GetVersion
LoadResource
FindResourceW
CreateFileW
VirtualQuery
VirtualFree
FindClose
TlsGetValue
Sleep
SetEndOfFile
TlsSetValue
ExitProcess
GetCurrentThreadId
VirtualAlloc
GetFileSize
SetLastError
ResetEvent
SysReAllocStringLen
SysFreeString
SysAllocStringLen
GetSystemMetrics
SetWindowLongW
MessageBoxW
PeekMessageW
LoadStringW
MessageBoxA
CreateWindowExW
MsgWaitForMultipleObjects
TranslateMessage
CharUpperBuffW
CallWindowProcW
CharNextW
GetKeyboardType
ExitWindowsEx
DispatchMessageW
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 5
RT_RCDATA 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 9
ENGLISH US 9
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
2.6.0.76

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
98816

EntryPoint
0x117dc

MIMEType
application/octet-stream

FileVersion
2.6.0.76

TimeStamp
2016:04:06 15:39:04+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

ProductVersion
2.6.0.76

FileDescription
DAX Studio Setup

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
http://daxstudio.codeplex.com

CodeSize
66560

ProductName
DAX Studio

ProductVersionNumber
2.6.0.76

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 65d18527aae22fd89cd0493ec233ba04
SHA1 6fccd9e3ee935a9ec397d478b64a6c38cae80fce
SHA256 df634b42c7ce6027aeab4e90d83594c637d6d6e73acc9e89027ed34de1655d37
ssdeep
98304:CZqWrAOHiKBqlJ8EyiBuiK3bjKaPDpDtjNJoVS3FWF:r+KSqlJ8EyFiH8tDtxyS3sF

authentihash d617f730890de49a8c7f593ae63d9863e0572fb288b07f5a7539f9d27fe5a4af
imphash 20dd26497880c05caed9305b3c8b9109
File size 4.8 MB ( 4986698 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Delphi generic (57.2%)
Win32 Executable (generic) (18.2%)
Win16/32 Executable Delphi generic (8.3%)
Generic Win/DOS Executable (8.0%)
DOS Executable Generic (8.0%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-12-21 12:08:59 UTC (пре 1 година, 8 месеци)
Last submission 2016-12-21 22:59:13 UTC (пре 1 година, 8 месеци)
Имена датотека Unconfirmed 957531.crdownload
DaxStudio_2_6_0_setup.exe
Нема коментара.. Ниједан члан заједнице Вајрустотала још није прокоментарисао ову ставку. Будите први који ће то урадити!

Оставите коментар…

?
Постави коментар

Нисте пријављени. Само регистровани корисници могу да остављају коментаре. Отворите налог и разгласите се!

Нема гласова.. Још нико није гласао за ову ставку. Будите први који ће то учинити!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Created mutexes
Runtime DLLs
UDP communications